JAVA: Why The Java Deserialization Bug Is A Big Deal. A recent blog post by FoxGlove Security that described remotely executable exploits against several major middleware products including WebSphere, WebLogic, and JBoss has focused attention on what some say is an extremely dangerous but wholly underrated class of vulnerabilities. The so-called Java deserialization vulnerability affects virtually all apps that accept serialized Java objects and gives attackers a way to gain complete remote control of an app server. Security researchers believe that potentially millions of applications — both commercial and internally developed– are susceptible to the issue, which is not easily mitigated. Read more

ORACLE: Should Oracle Spring Clean JavaFX? Why JavaFX hasn’t taken off, and what Oracle can do to improve it’s place in the ecosystem. Read more

ASP.NET: Microsoft’s open source .Net now ready for real apps. Microsoft is delivering feature-complete release candidates of .Net Core 5 and the ASP.Net 5 Web framework for Linux, Windows, and OS X. Developers can start using Microsoft’s open source .Net Core cross-platform framework and ASP.Net Web platform in production
environments, with an upgrade to be unveiled soon. Read more

TRANSLATION: Multilingual Support in ASP.NET Using AngularJS. Internationalization (i8n) in AngularJS can be tricky when using it along with ASP.NET, but here’s a tutorial that shows you how to get it done with no trouble at all. Read more


MANAGEMENT: Senate Clears Bill to Improve Management of Federal Programs. The Senate has passed a bill designed to curb government waste by using private-sector performance standards for federal programs and by creating new agency specialists in the discipline of program management. Read more

PRODUCTIVITY: 5 iPhone Project Management Apps To Simplify Your Work. So here are 5 project management apps that get it right when it comes to managing projects on the move on your iOS device. All of these iPhone project management apps are free to download although you’ll need a subscription with the corresponding cloud project management software vendor to use them. Read more

CLOUD: Containers March Into Mainstream With Security, Management Updates. Containers are making unrelenting advances into production systems, thanks to better security and management platforms from the likes of Docker, HP, Red Hat, and VMware. Recent developments have made it clear that containers are not just a great way for developers to package up code and move it around. They’re becoming secure, reliable vehicles with which enterprise IT operations and cloud users can move their code around as well. Read more

FISMA: How NIST Helps Government Meet FISMA Requirements. Getting agencies to cooperate is never easy. Getting entire communities to work together can be even harder. But one success story is the way the National Institute of Standards has brought together the best ideas in defense, intelligence and among Federal civilian agencies in support of the Federal Information Security Management Act. That effort, directed by Congress in the FISMA legislation, was led by NIST Fellow Ron Ross. Ross explains the many ways NIST is working to increase knowledge and understanding of cyber security and the standards it has developed for Federal, commercial and academic use. [VIDEO] Read more



Tech Update Summary from Blue Mountain Data Systems October 2015


APPLICATION DEVELOPMENT: Blue Mountain Data Systems is dedicated to Application Development and Systems Integration for Federal Civilian Agencies, Document Management Systems that help in the preparation, scanning, indexing, categorizing and quality control of millions of pages of paper documents to electronic format and the Automation of Workflow Processes. Call us at 703-502-3416.


ATTN: Federal & State CTOs CIOs CISOs: Daily Tech Update – November 24, 2015

Leave a Reply